PsProtect

Kernel Process Protect & Hide

ezpdb: https://github.com/i1tao/EzPDB

Compatible Win8 ~ Win11(24H2)

Protect:

1. PPL(PPL_AntiMalware)

2. APC(Anti ZwTerminateProcess, ZeroProcessMemory, TerminateThread, SuspendThread……) (PatchGuard WARNING!)

3. Set System Critical Process

4. Extract to SYSTEM

HideProcess:

1. Set Pid 4
2. Disconnection
3. Destruction Process Features(BSOD WARNING!)